[Oisf-devel] [COMMIT] OISF branch, master, updated. 0256ca242209edbea23948df52cef4db7fb0fc2e

Tue Nov 29 10:32:42 UTC 2011

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  0256ca242209edbea23948df52cef4db7fb0fc2e (commit)
       via  bf24272c282d7ebb17f2a55315cbf176658848ec (commit)
       via  997eaf42a8d1f37720b536878d78861395835ea3 (commit)
       via  9a6aef459e99cac2340109ec26bdd8a141fa824f (commit)
       via  d3468d88b049857a9aa15c55abe73bb8cd18298f (commit)
       via  01a35bb604fa05bd38265230ebe6da1a3bdac9e9 (commit)
       via  87599bc78d2569100358a3090ba7c34dd84daf64 (commit)
       via  3a856fed1250dbc7ea2251567e022e35d3ee5984 (commit)
       via  4d38a571cc32421b44a16a4018c6a0bf6cebda05 (commit)
       via  4a6908d3e960b8f9b5d2c67e6135235a08b6f508 (commit)
       via  2b356dadff5f75b0b3553b7a0f2107d31202d6ca (commit)
       via  211193b0afe34554dd1f866d6b96a19d23a1b7d2 (commit)
       via  262a7300d701c44dba13bb2aaa2b14bed3485383 (commit)
      from  06904c90243e33c0506fbfdc1013c802d2918d72 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 0256ca242209edbea23948df52cef4db7fb0fc2e
Author: Eric Leblond <eric at regit.org>
Date:   Mon Nov 28 18:01:14 2011 +0100

    af-packet: fix compilation on new systems.

    Inclusion of if_packet.h was missing when the support of new options
    related to packet fanout is present in the file.

commit bf24272c282d7ebb17f2a55315cbf176658848ec
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Sun Nov 27 22:38:13 2011 +0530

    changes to accomodate master rebase

commit 997eaf42a8d1f37720b536878d78861395835ea3
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Sun Nov 27 19:14:24 2011 +0530

    add thread local storage support for smtp + remove pmq that was init/freed as part of smtp_state alloc to use the thread local data passed by the app layer engine

commit 9a6aef459e99cac2340109ec26bdd8a141fa824f
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Sun Nov 27 16:13:55 2011 +0530

    modify all relevant app layer API calls to accomodate passing parser local storage argument

commit d3468d88b049857a9aa15c55abe73bb8cd18298f
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Sun Nov 27 14:30:25 2011 +0530

    app layer udp cleanup + update dcerpc udp todo

commit 01a35bb604fa05bd38265230ebe6da1a3bdac9e9
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Sun Nov 27 14:18:46 2011 +0530

    introduce app layer local storage api support

commit 87599bc78d2569100358a3090ba7c34dd84daf64
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Mon Nov 21 18:28:14 2011 +0530

    minor changes in smtp parser decoder wrt direction check loop + add missing ifdef unittests

commit 3a856fed1250dbc7ea2251567e022e35d3ee5984
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Mon Nov 21 18:09:28 2011 +0530

    update detection engine to compare flow alproto with sig_alproto, rather than sm alproto.

commit 4d38a571cc32421b44a16a4018c6a0bf6cebda05
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Mon Nov 21 18:07:07 2011 +0530

    smtp reply code mpm phase support added

commit 4a6908d3e960b8f9b5d2c67e6135235a08b6f508
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Sat Nov 19 18:12:21 2011 +0530

    fix smtp parser handling fragmented lines + add new unittests to check the same

commit 2b356dadff5f75b0b3553b7a0f2107d31202d6ca
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date:   Tue Nov 29 01:59:47 2011 +0530

    Support for tos keyword added

commit 211193b0afe34554dd1f866d6b96a19d23a1b7d2
Author: deltay <delta.yeh at gmail.com>
Date:   Mon Nov 28 16:24:54 2011 +0800

    Get pidfile from config file if not available in command options

commit 262a7300d701c44dba13bb2aaa2b14bed3485383
Author: Victor Julien <victor at inliniac.net>
Date:   Sun Nov 27 16:15:58 2011 +0100

    flow: shrink Flow datatype

    Introduce a separate FlowAddress structure for holding the ipv4 or ipv6 address
    that doesn't have the family in it like the Address structure. Instead, the
    family is stored in the flow as a flag: FLOW_IPV4 and FLOW_IPV6.

    Add macro's to check the family, copy the address, etc.

    Update many unittests to reflect these changes. Introduce unittest helper
    functions for creating and initializing a flow and freeing it again.

    On 64 bit this shrinks the flow with 8 bytes.

-----------------------------------------------------------------------

Summary of changes:
 src/Makefile.am                          |    1 +
 src/app-layer-dcerpc-udp.c               |   12 +-
 src/app-layer-dcerpc.c                   |  103 ++--
 src/app-layer-detect-proto.c             |  122 ++--
 src/app-layer-ftp.c                      |   31 +-
 src/app-layer-htp.c                      |  190 ++++---
 src/app-layer-parser.c                   |  135 ++--
 src/app-layer-parser.h                   |   25 +-
 src/app-layer-smb.c                      |   30 +-
 src/app-layer-smb2.c                     |    5 +-
 src/app-layer-smtp.c                     |  977 +++++++++++++++++++++++++-----
 src/app-layer-smtp.h                     |    2 +
 src/app-layer-ssh.c                      |   64 +-
 src/app-layer-ssl.c                      |  130 ++--
 src/app-layer.c                          |   23 +-
 src/decode.h                             |    2 +
 src/detect-dce-iface.c                   |   42 +-
 src/detect-dce-opnum.c                   |   56 +-
 src/detect-dce-stub-data.c               |   36 +-
 src/detect-engine-dcepayload.c           |  208 +++----
 src/detect-engine-hcbd.c                 |  178 +++----
 src/detect-engine-hcd.c                  |   85 +--
 src/detect-engine-hhd.c                  |  147 ++---
 src/detect-engine-hmd.c                  |   85 +--
 src/detect-engine-hrhd.c                 |  147 ++---
 src/detect-engine-hrud.c                 |  188 +++----
 src/detect-engine-state.c                |   30 +-
 src/detect-engine-uri.c                  |  192 +++----
 src/detect-engine.c                      |    4 +
 src/detect-ftpbounce.c                   |   16 +-
 src/detect-http-client-body.c            |   82 ++--
 src/detect-http-cookie.c                 |   35 +-
 src/detect-http-header.c                 |   48 +-
 src/detect-http-method.c                 |   20 +-
 src/detect-http-raw-header.c             |   48 +-
 src/detect-http-stat-code.c              |   28 +-
 src/detect-http-stat-msg.c               |   21 +-
 src/detect-pcre.c                        |   98 ++--
 src/detect-ssh-proto-version.c           |   24 +-
 src/detect-ssh-software-version.c        |   24 +-
 src/detect-ssl-state.c                   |   10 +-
 src/detect-ssl-version.c                 |   24 +-
 src/detect-tag.c                         |    6 +-
 src/detect-tls-version.c                 |   24 +-
 src/detect-tos.c                         |  430 +++++++++++++
 src/{detect-classtype.h => detect-tos.h} |   13 +-
 src/detect-uricontent.c                  |   47 +-
 src/detect-urilen.c                      |    5 +-
 src/detect.c                             |   54 +-
 src/detect.h                             |    1 +
 src/flow-timeout.c                       |   44 +-
 src/flow-util.c                          |   26 +-
 src/flow.h                               |   92 +++-
 src/source-af-packet.h                   |    2 +
 src/stream-tcp-reassemble.c              |  325 +++--------
 src/suricata.c                           |    5 +
 src/util-unittest-helper.c               |   48 ++
 src/util-unittest-helper.h               |    3 +
 suricata.yaml                            |    4 +
 59 files changed, 2848 insertions(+), 2009 deletions(-)
 create mode 100644 src/detect-tos.c
 copy src/{detect-classtype.h => detect-tos.h} (80%)

hooks/post-receive
-- 
OISF